VYPR

flusity-CMS

by flusity

CVEs (25)

  • CVE-2024-33442MedMay 1, 2024
    risk 0.28cvss 4.3epss 0.01

    An issue in flusity-CMS v.2.33 allows a remote attacker to execute arbitrary code via the add_post.php component.

  • CVE-2024-25410MedFeb 26, 2024
    risk 0.00cvss 6.5epss 0.01

    flusity-CMS 2.33 is vulnerable to Unrestricted Upload of File with Dangerous Type in update_setting.php.

  • CVE-2023-5811LowOct 27, 2023
    risk 0.00cvss 2.4epss 0.01

    A vulnerability, which was classified as problematic, was found in flusity CMS. Affected is the function loadPostAddForm of the file core/tools/posts.php. The manipulation of the argument menu_id leads to cross site scripting. It is possible to launch the attack remotely. The…

  • CVE-2023-5810LowOct 27, 2023
    risk 0.00cvss 2.4epss 0.00

    A vulnerability, which was classified as problematic, has been found in flusity CMS. This issue affects the function loadPostAddForm of the file core/tools/posts.php. The manipulation of the argument edit_post_id leads to cross site scripting. The attack may be initiated…

  • CVE-2023-5793LowOct 26, 2023
    risk 0.00cvss 3.5epss 0.00

    A vulnerability was found in flusity CMS and classified as problematic. This issue affects the function loadCustomBlocCreateForm of the file /core/tools/customblock.php of the component Dashboard. The manipulation of the argument customblock_place leads to cross site scripting.…

Page 2 of 2